I believe that is the issue, it seems the upstream provider has taken a very conservative stance regarding keysize in their kernel modules for cryptoloop. You will probably need to investigate further.